Re: Internet Sharing through NAT

The only thing I have seen cause this was a default gateway configured
on the private NIC. Only the public NIC should have a gateway address
configured.

There is really no need for static routes. All that is necessary is that
the client uses the server's private NIC as its default gateway. All
non-local traffic will be sent to the server, and NAT should then take over
and route it to the Internet.

Using an address pool just lets you use automatic IP assignment on the
client. If you only have one or two clients you might as well configure them
manually.

Have you modified DNS to forward to a public DNS? If so, can you resolve
public URLs from the client (using nslookup)?


hhubbo wrote:
> Yes, I rebooted my server a couple of times. i wonder if i should
> setup static route or address pool?
>
> "Bill Grant" wrote:
>
>> That should be all you need. Have you tried a reboot of the server?
>>
>> hhubbo wrote:
>>> yes, the public interface is 10.0.0.1, and 192.168.1.1 is private
>>> interface.
>>>
>>>
>>> "Bill Grant" wrote:
>>>
>>>> In that case you probably haven't configured NAT correctly. Do
>>>> you have the 10.0.0.1 configured as the public interface and
>>>> 192.168.1.1 configured as the private interface in NAT?
>>>>
>>>> hhubbo wrote:
>>>>> Sorry Bill, maybe i didn't explain clearly, I can ping the ip
>>>>> address of external nic from the laptop, which mean i can ping
>>>>> 10.0.0.1 from 192.168.1.2, but i can't ping any external public
>>>>> IP.
>>>>>
>>>>> "Bill Grant" wrote:
>>>>>
>>>>>> Since you are running AD, the problem is probably DNS. If you
>>>>>> can ping an external public IP, NAT is working.
>>>>>>
>>>>>> Set the DNS on your server to forward to a public DNS
>>>>>> service. Then set both your server and the client laptop to use
>>>>>> 192.168.1.1 for DNS . (The latter step is required for AD to
>>>>>> work properly). Check that it works by doing an nslookup from
>>>>>> the server and the laptop (eg nslookup www.microsoft.com ).
>>>>>>
>>>>>> hhubbo wrote:
>>>>>>> I have a 2003 server which is domain Controller. It has DNS,
>>>>>>> DHCP and RRAS enable with NAT. There are two nics installed. one
>>>>>>> connect to an ADSL modem, another is connected with a internal
>>>>>>> laptop. the laptop can ping external IP but cannot browse
>>>>>>> internet. How should I do to configure NAT?
>>>>>>>
>>>>>>> External IP: 10.0.0.1
>>>>>>> Mask: 255.255.255.0
>>>>>>> Gateway: 10.0.0.138
>>>>>>>
>>>>>>> Internal IP: 192.168.1.1
>>>>>>> Mask: 255.255.255.0
>>>>>>>
>>>>>>> Laptop: 192.168.1.2
>>>>>>> Mask: 255.255.255.0
>>>>>>> Gateway: 192.168.1.1


.

Relevant Pages

  • RE: ISA 2004 Firewall Client and ActiveSync 4.2
    ... at home in my WLAN all internet ... that killing my default gateway is not the way ... gateway and the appropriate DNS server entries. ... server internal IP then your client works as a secureNAT client and you're ...
    (microsoft.public.isa.clients)
  • Re: Build up NAT/VPN Role Server
    ... Ifyou are not running Active Directory you do not need to set up DNS. ... use the NAT server as a DNS proxy (by configuring that option on the RRAS ... > upload) 2 Client running Windows XP Pro ... > Gateway = Not Set ...
    (microsoft.public.windows.server.networking)
  • RE: ISA 2004 Firewall Client and ActiveSync 4.2
    ... though I was connected in a Wireless Lan I changed my configuration. ... that killing my default gateway is not the way ... gateway and the appropriate DNS server entries. ... server internal IP then your client works as a secureNAT client and you're ...
    (microsoft.public.isa.clients)
  • RE: ISA 2004 Firewall Client and ActiveSync 4.2
    ... though I was connected in a Wireless Lan I changed my configuration. ... that killing my default gateway is not the way ... gateway and the appropriate DNS server entries. ... server internal IP then your client works as a secureNAT client and you're ...
    (microsoft.public.isa.clients)
  • Re: RRAS-VPN-Static Pool-Default Gateway assignment
    ... that when I assign an ip address to my client by specifying it in AD, ... and specify the IP address of the server as it's gateway, ... I have on machine as the vpn server. ...
    (microsoft.public.win2000.ras_routing)